Login or Register to Ask a Question and Join Our Community


Linux

SCEP and Trust Anchor

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Linux SCEP and Trust Anchor
# 1  
Old 02-11-2011
SCEP and Trust Anchor
Hi Does anybody knows about the simple certificate enrollment protocol details ?

if yes please provide me the details.

And what is a trust anchor profile ?

Thanks in advance.
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

SSH Trust Testing

Hi, I want test the ssh trust between two host. It works fine if the trust is working fine but if the trust is not working fine it gets stuck. #!/bin/sh >/users/test/ssh.txt for i in `cat /users/test/host.txt`; do ssh test@$i uname -a >> /users/test/ssh.txt test=`cat... (0 Replies)
Discussion started by: Abhayman
0 Replies

2. Shell Programming and Scripting

Scan for anchor tags in Perl?

Hello all, I have some .html files on my hard drive and trying to figure out (if it's possible) how to scan the files in the directory for <a> anchor tags to find linked files. I know how to bring the files in with Perl, but as text. Wondering if there's a way to probe the file for... (2 Replies)
Discussion started by: sldsand
2 Replies

3. Shell Programming and Scripting

What is the most widely used word anchor used in Regex?

Hello, All I learned from book about word anchor "\<" and "\>"; however when I tested them, they seem to work only in grep. Can anyone suggest word anchor that can be used in grep, awk, perl ...? (3 Replies)
Discussion started by: littlewenwen
3 Replies

4. Shell Programming and Scripting

Extracting anchor text and its URL from HTML files in BASH

Hi All, I have some HTML files and my requirement is to extract all the anchor text words from the HTML files along with their URLs and store the result in a separate text file separated by space. For example, <a href="/kid/stay_healthy/">Staying Healthy</a> which has /kid/stay_healthy/ as... (3 Replies)
Discussion started by: shoaibjameel123
3 Replies

5. Shell Programming and Scripting

grep/egrep fails with $ anchor?

The $ seems to fail for me. I'm using GNU grep 2.5.4 (that is, nothing out of the ordinary, just what came with my distro) but I can't get the final anchor $ to work for me. (^ works as usual.) Behavior without anchor: $ /bin/grep -E 'tium' file tritium tertium quid Expected behavior: $... (2 Replies)
Discussion started by: CRGreathouse
2 Replies

6. Solaris

Compile SSCEP (Simple SCEP client for Unix) on Solaris 10 box

Hi folks I am trying to compile SSCEP (Simple SCEP client for Unix) on Solaris 10 box. SSCEP - Simple SCEP client for Unix The errror is "ld: fatal: Symbol referencing errors. No output written to" $ make gcc -Wall -O -lcrypto -o sscep sscep.o init.o net.o sceputils.o pkcs7.o ias.o... (2 Replies)
Discussion started by: slashdotweenie
2 Replies

7. UNIX for Dummies Questions & Answers

ssh trust issue

Hi, i am setting up ssh trust setup between two servers where SVRA is a solaris box and SVRB is a Red Hat Linux. It is asking for the password all the time. I have copied over the SVRA:/home/nagios/.ssh/id_dsa.pub as authorized_keys on to SVRB:/dat01/home/nagios/.ssh/ -bash-3.00$ ssh -vvv... (4 Replies)
Discussion started by: uxadmin007
4 Replies

8. HP-UX

Not Trust Host 10.10.10.10

I get a message similar to this, in the syslog file. Actually, I am trying to let the host at 10.10.10.10 access the HP-UX system. How do I get it trusted? Thanks! (2 Replies)
Discussion started by: instant000
2 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

ldns_dane_cert2rdf

ldns(3) 						     Library Functions Manual							   ldns(3)

NAME

       ldns_dane_create_tlsa_owner, ldns_dane_cert2rdf, ldns_dane_select_certificate, ldns_dane_create_tlsa_rr

SYNOPSIS

       #include <stdint.h>
       #include <stdbool.h>

       #include <ldns/ldns.h>

       ldns_status ldns_dane_create_tlsa_owner(ldns_rdf** tlsa_owner, const ldns_rdf* name, uint16_t port, ldns_dane_transport transport);

       ldns_status ldns_dane_cert2rdf(ldns_rdf** rdf, X509* cert, ldns_tlsa_selector selector, ldns_tlsa_matching_type matching_type);

       ldns_status  ldns_dane_select_certificate(X509** selected_cert, X509* cert, STACK_OF(X509)* extra_certs, X509_STORE* pkix_validation_store,
       ldns_tlsa_certificate_usage cert_usage, int index);

       ldns_status  ldns_dane_create_tlsa_rr(ldns_rr**	 tlsa,	 ldns_tlsa_certificate_usage   certificate_usage,   ldns_tlsa_selector	 selector,
       ldns_tlsa_matching_type matching_type, X509* cert);

DESCRIPTION

       ldns_dane_create_tlsa_owner()  Creates  a  dname  consisting  of  the  given  name, prefixed by the service port and type of transport: _<-
	      EM>port</EM>._<EM>transport</EM>.<EM>name</EM>.

	      tlsa_owner: The created dname.
	      name: The dname that should be prefixed.
	      port: The service port number for wich the name should be created.
	      transport: The transport for wich the name should be created.
	      Returns LDNS_STATUS_OK on success or an error code otherwise.

       ldns_dane_cert2rdf() Creates a LDNS_RDF_TYPE_HEX type rdf based on the binary data choosen by the selector and encoded using matching_type.

	      rdf: The created created rdf of type LDNS_RDF_TYPE_HEX.
	      cert: The certificate from which the data is selected
	      selector: The full certificate or the public key
	      matching_type: The full data or the SHA256 or SHA512 hash of the selected data
	      Returns LDNS_STATUS_OK on success or an error code otherwise.

       ldns_dane_select_certificate() Selects the certificate from cert, extra_certs or the pkix_validation_store based on the value of cert_usage
	      and index.

	      selected_cert: The selected cert.
	      cert: The certificate to validate (or not)
	      extra_certs:  Intermediate certificates that might be necessary during validation. May be NULL, except when the certificate usage is
	      "Trust Anchor Assertion" because the trust anchor has to be provided.(otherwise choose a "Domain issued certificate!"
	      pkix_validation_store: Used when the certificate usage is "CA constraint" or "Service Certificate Constraint" to validate  the  cer-
	      tificate	and,  in case of "CA constraint", select the CA.  When pkix_validation_store is NULL, validation is explicitely turned off
	      and the behaviour is then the same as for "Trust anchor assertion" and "Domain issued certificate" respectively.
	      cert_usage: Which certificate to use and how to validate.
	      index: Used to select the trust anchor when certificate usage is "Trust Anchor Assertion". 0 is the last certificate in the  valida-
	      tion chain. 1 the one but last, etc. When index is -1, the last certificate is used that MUST be self-signed.  This can help to make
	      sure that the intended (self signed) trust anchor is actually present in extra_certs (which is a DANE requirement).

	      Returns LDNS_STATUS_OK on success or an error code otherwise.

       ldns_dane_create_tlsa_rr() Creates a TLSA resource record from the certificate.	No PKIX validation is performed! The given certificate	is
	      used as data regardless the value of certificate_usage.

	      tlsa: The created TLSA resource record.
	      certificate_usage: The value for the Certificate Usage field
	      selector: The value for the Selector field
	      matching_type: The value for the Matching Type field
	      cert: The certificate which data will be represented

	      Returns LDNS_STATUS_OK on success or an error code otherwise.

AUTHOR

       The ldns team at NLnet Labs. Which consists out of Jelte Jansen and Miek Gieben.

REPORTING BUGS

       Please report bugs to ldns-team@nlnetlabs.nl or in our bugzilla at http://www.nlnetlabs.nl/bugs/index.html

COPYRIGHT

       Copyright (c) 2004 - 2006 NLnet Labs.

       Licensed under the BSD License. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

SEE ALSO

       ldns_dane_verify, ldns_dane_verify_rr.  And perldoc Net::DNS, RFC1034, RFC1035, RFC4033, RFC4034  and RFC4035.

REMARKS

       This manpage was automaticly generated from the ldns source code by use of Doxygen and some perl.

								    30 May 2006 							   ldns(3)